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REMARKS 

With this amendment, claims 1-10 are in this application. 
Amendments to the claims 

The wording "object of electronic commerce 77 has been canceled from claim 1. Reference 
numerals have been canceled throughout the claims. The above amendments have 
been made for clarity purposes only. 

Specification 

1. In Section 1 of the Action, the Examiner objects to the title of the application. A 
substitute specification is enclosed with the present response. In the substitute 
specification, the title has been amended to read "Apparatus for control and 
certification of the delivery of goods." Therefore, the Applicant submits that the 
objection of the Examiner has been overcome. 

2. In Section 3 of the Action, the Examiner suggests headings to be included 
throughout the specification. The Applicant has included headings. Further, the 
Examiner requires that "[w]henever figures are discussed in the Specification they 
should be identified so to clarify structural or operational explanations." The substitute 
specification enclosed with the present response complies with this requirement. See, 
for example, page 3 line 8 (Figure 1), page 10 line 1 (Figure 2), page 11 line 21 (Figure 3), 
page 11 line 32 (Figure 4), page 14 line 4 (Figure 5), page 20 line 24 (Figure 6), page 21 
line 18 (Figure 7), page 22 line 15 (Figures 8A and 8B), page 23 line 19 (Figure 9), page 24 
line 12 (Figures 10A and 10B). 

3. In Section 4 of the Action, the Examiner requires the specification to "be revised 
carefully in order to comply with 35 U.S.C. 112, first paragraph." In response to this 
requirement, the Applicant encloses a substitute specification, as already noted above. 
In particular, the sentence containing the term "realized" has been reworded to recite 
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that "[t]he client will realize those uses only when checking the statement of account/' See page 
4, lines 23-24 of the substitute specification. Additionally, the sentence "data related to 
the credit card are not made to transit 7 ' has been reworded to recite "data related to the 
credit card do not pass through Internet nodes", as shown at page 5, lines 15-16. Additional 
corrections will be self-evident from the reading of the marked-up copy of the 
substitute specification. The Applicant submits that the substitute specification does not 
add new matter. Additionally, the Applicant submits that the substitute specification 
overcomes the objections of the Examiner. 

Drawings 

1. In section 5 of the Action, the Examiner requires new corrected drawings, to 
replace the drawings as filed, to be submitted. Replacement sheets 1/11 . . 11/11 
containing new corrected drawings are submitted with the present response. The 
Applicant took this opportunity to replace minor clerical errors and informalities. The 
term "application" is now correctly spelled in box S9 of Figure 5. A hyphen has been 
eliminated between the words "preset" and "sequence" in box S22 of Figure 7. The term 
"FDB" in Figure 8A has been replaced by the term "FDS", as disclosed in the last 
paragraph of page 22 of the substitute specification. Together with a formal copy of the 
drawings, also a copy of Figure 5, 7, and 8A as filed, showing the above changes in red 
ink, is enclosed. The Applicant submits that the formal copy of the drawings enclosed 
with the present response overcomes the objections of the Examiner. 

2. In section 6 of the Action, the Examiner requires at least Figure 1 to be 
designated by a legend such as -Prior Art— The Applicant has designated Figures 1, 2, 
and 3 with such legend. A copy of Figures 1, 2, and 3 as filed, showing the added 
legend in red ink, is also enclosed. Therefore, the Applicant submits that the amended 
copy of the drawings complies with the Examiner's requirement. 

35 USC §112, second paragraph Rejections 

In section 8 of the Action, the Examiner rejects claims 1 and 2-10 under 35 USC § 112, 
second paragraph, in view of the term "goods object." The Applicant has cancelled the 
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term "object of electronic commerce" from claim 1 and submits that claims 1 and 2-10 as 
amended comply with the requirements of 35 USC § 112, second paragraph. 

Double Patenting 

In sections 9 and 10 of the Action, the Examiner rejects claims 1-10 under the judicially 
created doctrine of obviousness-type double patenting as being unpatentable over some 
of the claims of U.S. Pat. No. 6,587,439. 

U.S. Pat. No. 6,587,439 and the present application are commonly owned. Enclosed 
herewith is a terminal disclaimer, and the associated fee, disclaiming the terminal part 
of the statutory term of any patent granted on the present application, which would 
extend beyond the expiration date of U.S. Pat. No. 6,587,439. Therefore, the Applicant 
submits that, with the submission of the terminal disclaimer, under 37 C.F.R. 1.130(b) 
the grounds for rejecting the claims based on double patenting have been overcome. 

* * * 

Applicant submits that all claims of the application are in condition for allowance. 
Prompt issuance of a Notice of Allowance is earnestly solicited. 
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The Commissioner is authorized to charge any additional fees which may be required 
or credit overpayment to deposit account no. 12-0415. In particular, if this response is 
not timely filed, then the Commissioner is authorized to treat this response as including 
a petition to extend the time period pursuant to 37 CFR 1.136 (a) requesting an 
extension of time of the number of months necessary to make this response timely filed 
and the petition fee due in connection therewith may be charged to deposit account no. 
12-0415. 



I hereby certify that this correspondence is being 
deposited with the United States Postal Service 
with sufficient postage as first class mail in an 
envelope addressed to: Commissioner for Patent 
P.O. Box 1450 Alexandria, VA 22313-1450 on 

February 6, 2004 

(Date of Deposit) 

Ross A. Schmitt 
(Name of Person Depositing) 

, Signature . a 
Date 



Respectfully submitted, 



Ross A. Schmitt 
Attorney for Applicant 
Reg. No. 42,529 
LADAS & PARRY 
5670 Wilshire Blvd., Suite 2100 
Los Angeles, CA 90036 
(323)934-2300 
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- Petition for one-month extension 

- Check for one-month extension 

- Terminal disclaimer 

- Check for terminal disclaimer 

- Substitute specification (marked-up copy) 

- Substitute specification (clean copy) 

- Formal drawings (11 sheets) 

- Marked-up copy of Figures 1, 2, 3/5, 7, and 8B as filed (6 sheets) 

- Postcard 
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TITLE 

'apparatus for control and certification of the delivery of 
goods object of electronic commerce and for the concurrent 
control and certification of the execution of the related 

PAYMENT . 

DESCRIPTIO N 

BACKGROUND 
Field 

The present invention provides an apparatus for control and certification of the delivery 
of goods , object in the field of electronic commerce, and for the concurrent control 
and certification of the execution of the related payment. 

Description of related art 

For " e l e ctronic Electronic commerce" it is to b e understood — not only refers to the 
purchase the purchasing of goods delivered "electronically" (e.g., a document) but ^jt 
also refers to the electronic orders ord e ring of goods delivered through non- 
computerized distribution channels of a non comput e riz e d typ e. 

Fef A POS (Point of Sale) is a system allowing purchase by means of "electronic 
money" using a card having a magnetized strip, a microprocessor or both or even the 
mere identification number, usually ef 16 digits, of a card (cash card, credit card or 
others) is und e rstood . Such card will be indicated h e r e b e low with the generic term of 
electronic card, for ease of reference. 

The POS system includes a plurality of elements, some (Al to A 10) placed on the user 
side, others (Bl to B5) on the side of the company issuing the electronic card: 

A) USER SIDE 

1) An electronic card reading device; 

2) a data inputting input device (keypad); 

3) a di s playing display device; 

4) a printing device; 
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5) a modem; 

6) a software for fee processing of fee data read by the reading device (bank or 
credit company code, client code etc.). Data are stored in a buffer for subsequent 
comparisons. The company code is used to determine the identification number of a 

5 company issuing electronic cards to which one can connect. The On the other hand, the 
client code will inst e ad be used to operate the related monitoring, once fee connection to 
the company issuing the electronic cards is obtained; 

7) A data proc e ssing softwar e for th e data input. Input data processing software . 
The amount entered through the keypad (or directly acquired from a cash register) is 

1 0 also stored in a buffer and to b e s e nt later sent to the company issuing electronic cards 
issuing company for the debiting procedure; 

8) A softwar e for the proc e ssing of the data entered by th e us e r User-entered data 
(personal secret code) processing software , including an encrypting module. Following 
the ent e ring of a cod e on th e After a code is entered on a keypad, a module specially 

15 provided for the purpose masks the entered, digits, replacing them on the display with 
asterisks, while a further module applies an encrypting algorithm to the entered code. 
Then the code thus encrypted is stored in a buffer to be sent later on to the company 
issuing electronic cards for the monitoring procedure; 

9) A data transmission software. Usually J1 a commercial communication 

2 0 software of comm e rcial typ e (based on standard TCP/IP protocols of the TCP/IP typ e or 

the like) is used, sending the above mentioned stored data to the center modem by means 
of the modem mentioned at 5); and 

10) A Data receiving and interpretation software for data rec e iving and — 
interpr e tation . With reference to the receiving software, a commercial communication 

25 software (based on standard TCP/IP protocols or the like) is used. In this cas e a s w e ll, 
for the r e c e iving usually a communication softwar e of a typ e on th e market (bas e d on 
standard protocols of , th e TCP/IP type or the like) is used. On the other hand, the 
interpretation software Th e int e rpretation provid e s instead a softwar e that, dep e nding on 
the s e qu e nc e of th e receiv e d data, stores the various elements (amount, client code and 

30 secret code) in buffers , according to the received data sequence . A decrypting module is 
also provided. 

B) ELECTRONIC CARD ISSUING COMPANY SIDE 
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1) A telephone calls receiver, typically a device capable of modulating several 
telephone lines, e.g., an ISDN trunk; 

2) A dedicated processor^ with the related peripheral devices; 

3) A database containing information ov e r the about cardholders, codes, granted 
5 credit, thefts/losses and the like; 

4) A software for int e rrogation Interrogation and authorization software to 
conclud e end the transaction. In particular, by means of the client code, the database is 
first of all interrogated to access fields reporting stops, thefts etc. Then the database is 
interrogated to access fields containing the eeito*g maximum amount reserved to the 

1 0 usef holder of the card and the amount s already spent. If everything is in order ( the card 
is not stolen, expenditure amount not exceeding fee daily withdrawing limit, sum of the 
amounts already spent and of the new amount within the monthly withdrawing limit) 
then the expense amount of th e e xpense that is b e ing operated at that time is summed 
added to the monthly and daily expenses fields. Th e n After that, the transaction is 

1 5 concluded successfully, with th e by generation of an "OK" code to be forwarded to the 
remote POS terminal; and 

5) A software Software for forwarding along the telephone line of the caller the 
above calculated answer comput e d at th e pr e ceding point . Usually, a commercial 
communication software of th e commercial type is used here as well (based on TCP/IP 

2 0 standard protocols of th e TCP/IP typ e or the like) forwarding the "OK" code to the 

remote POS terminal that had activated the request through the modem. 

Th e op e ration mod e s Figure 1 shows a flow chart referring to of the entire prior art 
system of th e known art h e r e to listed above e l e m e nt by e lement will b e disclos e d — 
25 h e r e below with referenc e to th e flow chart of figur e 1 : 

In a first step Dl the operator inserts the card in the reading device. 

In a second step D2 the data processing software mentioned at the pr e vious A6 above 

3 0 acquires the information stored in the card (bank or credit company code, client code 

etc.). 

In a succ es sive subsequent decision step D3 ^_ the card is recognized or not recognized. 
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If it the card is recognized, the flow proceeds to the steps D4 and D5 , where wh e rein 
r e sp e ctiv e ly the manual or automatic entering of the amount to be paid and of the secret 
code are requested , respectively . 

5 In a successiv e subsequent decision step D6 ^ the secret code is recognized or not 
recognized, always by means of the software mentioned at th e pr e vious A6 above . 

In a succ e ssiv e subsequent step D7 ^_ the acquired information is forwarded to the card 
issuing company center. Said The information includes the client code, the amount to be 
1 0 paid, the identification number of the caller and whatever else is needed to be processed 
at the card issuing company side. 

In the subsequent steps the card issuing company center acquires the request, processes 
it and sends the answer to the caller. 

15 

In particular, in step D8 is verifi e d verifies whether the data of the provider authorize the 
transaction or not. If it the transaction is authorized, in-ar step D9 th e debiting of debits 
the cost on the provider side occurs . In a succ e ssiv e subsequent step D10 ^ the acquiring 
of the affirmative answer is acquired by the caller occurs , while in a succ e ssiv e further 
2 0 step Dl 1 th e printing of the slip confirming the transaction conclusion is printed occurs . 
If inst e ad On the other hand, if the transaction is impossible (step D12) . the reason why 
the transaction cannot be concluded can be printed or displayed, the printing or th e 
displaying of the r e ason b e caus e of which th e transaction could not b e conclud e d can 
occur. 

25 

The On the other hand, if the transaction is successfully concluded e nds inst e ad with th e 
deliv e ry of , the operator delivers the goods by th e op e rator (step D13). 

A system as the one hereto described, at th e mom e nt currently adopted by nearly all 
30 stores and sales centers, cannot be easily applied apply to the field of electronic trade, 
i.e., to the field related to the remote electronic purchasing of items or goods by means 
of a network connection and on-line payment by electronic card. In fact, on e of th e main 
reasons making such a' syst e m impractical is its intrinsic n ee d of providing th e pr e s e nc e 
of an op e rator, som e how c e rtifying th e succ e ssful conclusion of the transaction. The 
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intrinsic need of the system to provide for the presence of an operator certifying 
successful conclusion of a transaction is one of the main reasons why the system is 
impractical. 

5 The currently known electronic trade systems known to dat e provide the simple entering 
of the credit card identification number and the forwarding th e r e of of the number 
through the Internet, Intranet, Extranet nodes or the like. The problems e ntail e d to said 
associated with such mode are well known: on one hand ^_ the unwillingness of the user 
to let his credit card number travel along a system such as the Internet, stiH not very safe 

1 0 yet, and, on the other hand, the problem for the service provider probl e m of making in to 
make a real time m assessment of the validity or not of the credit card number that i s 
being forwarded. Furthermore, the knowl e dg e of once the provider knows the card 
number ^_ by the provid e r can bring to th e automatic debiting of a monthly fee after a 
trial period or other uses by the provider that could hardly be controlled by the client can 

1 5 occur. , who can r e aliz e d it The client will realize those uses only when checking the 
statement of account. 

Another known mode is that of providing the payment by means of prepaid cards of th e 
pr e paid typ e (e.g., telephone cards, rechargeable cards, prepaid highway-toll cards etc.). 

2 0 A first problem is the value of those cards, which is necessarily limited. Such cards, 
being payable to the bearer, entail the same risks of loss or theft of cash. Th e probl e ms 
r e lat e d to the use of said cards conc e rn first of all th e valu e th e r e of, n e cessarily limited 
(in fact, b e ing of th e payable to b e ar e r kind th e y are lik e cash, h e nc e entailing th e sam e 
risks of loss or th e ft of a bank not e ). Furthermore, said such cards have a value which 

2 5 decreases with time b e ing of th e scaling down kind , so that the user will never be certain 
whether he has an amount which is sufficient for a purchase, of disposing of a r e sidual 
amount sufficing for th e purchas e to b e op e rat e d. Moreover, said such cards need to be 
recharged (or repurchased) and th e r e for e so that POS specially provided for the purpose 
have to be envisaged, the widespread distribution on the territory and availability 

30 (working hours) thereof being critical factors. Furthermore, the prepaid cards are issued 
by specific service providers (In Italy: Telecom, TIM, Societa Autostrade etc.), thus 
allowing access to the services provided by the issuer only, in absence of specific 
agreements with other service providers. 
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However, the present invention will be able to use the present prepaid card payment 
systems, thus providing the customers with a further possible alternative to make 
ex e cut e the payment. 

SUMMARY 

The present invention overcomes the drawbacks of the known art as it makes the POS 
system h e reto described above applicable to the systems of electronic commerce 
systems , further allowing the concurrent documentation of the operated transactions, 
with no without need of providing an operator. 



Moreover, by means of the present invention, data related to the credit card are not mad e 
te do not pass transit along through Internet nodes, but and are instead forwarded 
through different telephone lines, such as for e xampl e those already in use with the POS 
system, ensuring in this respect a data safety at least equaling that of the pr e s e nt current 
15 POS systems. 

By means of the present invention ^ it will no longer be necessary to send 

identifications (numerical codes) relative to a payment system on the Internet, but and it 
will be possible to fully separate the applicativ e transaction st e p in Internet (or Intranet, 
2 0 Extranet or other communication data networks) applicative transaction step from the 
"negotiation" step of the payment: such step is run using direct communication channels 
(telephone lines and ISDN, TAC, GSM and satellite lines, r adiofr e quenc e 
radiofrequency etc.). 

2 5 The present invention allows the certification of the conclusion of the payment process 
which took taking place through those lines and the communication thereof via Internet 
to the provider who will provide his service, b e ing c e rtain because the provider will have 
the certainty of having been paid. 

30 In the following description reference will be made to the D ISDN channel as a direct 
communication channel for the payment step: such choice is a mere example, as if4s 
possibl e to us e any of th e any other available direct communication channels (mobile or 
household telephones, radio etc.) can be used . 
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A peculiar case that might occur when this invention is used without having another 
communication channel available concerns th e relates to use of the same communication 
channel used for the access to the Internet: in this case ^_ by means of the present 
invention ^_ it will possible to store the necessary data, disconnect from the Internet, use 
5 the communication channel to perform the payment, store the payment data, connect 
again to the Internet, re-establish the connection with the provider and complete the 
transaction by furnishing providing the data relative to payment. Furthermore, as an 
alternative to the disconnection te from the communication channel, it will be possible 
to use, for the payment step, the same communication channel used for the Internet 
10 connection, made "safe" for the communication using methods known in the art (i.e. 
"tunneling"). 

In fact, th e The present invention provides an apparatus for control and certification of 
the delivery of goods obj e ct of e l e ctronic comm e rc e by means of Internet, Intranet, 
15 Extranet connections or the like and for the concurrent control and certification of the 
execution of the related payment, comprising: 

a) a system for reading an electronic card and for managing authorization 
processes by the electronic card issuing company(26, 28, 30, 31); 

b) an apparatus (27) for monitoring and interpretation of application protocols for 
2 0 network data transmission systems connected to said system for reading an electronic 

card and comprising: 

bl) a data packets monitoring device (9) at a layer corresponding to the OSI layer 
2, said data packets comprising control frames and information frames, wherein the 
control and information frames contain a header portion and a body portion, said header 

2 5 portion for the distinction between an information frame and a control frame; 

b2) a control unit (15) receiving as an input the data coming from the monitoring 
device (9) and comprising means for the discrimination of the control frames from the 
information frames; 

b3) a dating unit (16) connected to the control unit (15) and associating a 

3 0 monitoring time to the control frames and to the information frames; 

b4) a discriminated data storing unit (17) storing the control and the information 
frames and the monitoring time thereof, bidirectionally connected to the control unit 
(15); 
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b5) a predetermined data storing unit (18), bidirectionally connected to the 
control unit (15), said predetermined data representing possible interpretations of the 
information frames contained in the discriminated data storing unit (17); 

b6) means for comparing, by the control unit (15), said predetermined data stored 
5 in the storing unit (18) with the data contained in the body portion of the information 
frames stored in the discriminated data storing unit (17), thus reconstructing the 
information frames according to their specific application syntax; 

b7) means for ordering, according to the time and kind of communication, the 
information frames reconstructed according to their specific application syntax, thus 
10 reconstructing application sequences occurred between a determined source processor 
and a determined destination processor; and 

b8) means for ordering said information frames ordered according to the time 
and kind of communication also according to a logical criterion, thus reconstructing the 
logical path of said application sequences occurred between a determined source 
1 5 processor and a determined destination processor, and 

c) a data storing unit of the various transactions object of electronic commerce 
monitored and interpreted by means of said apparatus (27) for monitoring and 
interpretation of application protocols. 

2 0 Th e control and the analysis Control and analysis of the data contained in the data 
storing unit allow to r e construct reconstruction of the actual operation mode of the 
transactions so as to s e ttl e . thus allowing settlement of possible disputes. When needed, 
data stored in said the storage unit might be encrypted by means of encrypting 
algorithms. The unit might further be lead-sealed. 

25 

Advantageous embodiments of the present invention will be provided in the dependent 
claims thereof. 

The procedure is of automated type; in fact, the attendance of an operator is not needed ± 
30 , as th e cli e nt wishing to operate the purchasing A client who wishes to make a purchase 
will be capable to complete the entire purchasing process with the sole aid of the 
apparatus according to the present invention. 




- 9 - 

The apparatus according to the present invention ensures that the goods are not delivered 
if the payment is not confirmed, as w e ll as that the goods correspond to the order, and 
lastly that the amount paid corresponds to the one asked for. 

5 Moreover, the apparatus according to the present invention can document in detail all 
the operated transactions. Thus, certified information is made available, allowing 
settlement of capable of s e ttling possible disputes. 

Various operation modes of the present invention are listed herebelow: 
10 1) Electronic commerce without a teller: the need of a conventional POS operator 

is eliminated, since the control of the payment and of the delivery of goods is made 
possible. 

2) Authentication of remote bank transactions: in fact, a known type of electronic 

commerce provides an electronic interaction between an account holder and his own 
1 5 bank. By means of the present invention, once the client is identified by means of his 

electronic card, the operated transactions will be confirmed and documented. 

The identification of the a client holder of a n electronic card can be further controlled 

through the remote recognition of the a fingerprint or the acquisition of the an image of 

the client by means of a camera. 
20 3) Recognition and authentication of operators provided with electronic card, 

who connect to a service center authenticating their identity, thus authorizing them to 

operate. 

4) Electronic commerce via Intranet, Extranet and Internet. It allows to obtain the 
following advantages: . 
2 5 a) for the purchaser: 

al) entrusting the card number for payment to a transmission line different from 
the one used for the conn e ction to Internet connection : card-related data will transit 
through the central switching systems (fixed lines, mobile lines or satellite lines), but not 
through the Internet web nodes, or the provider nodes. In this way, the card number is 
30 not sent to the service provider, thus avoiding possible undesired debiting; 

a2) using the established safety standards of the methods and machinery used by 
the POS; 

a3) obtaining a certification and a documentation of the operated transactions that 
can be used to settle disputes; 
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a4) a further control of the trade operated from each single location, in case of 
local networks connected to geographical networks through a single network processor; 
b) for the service provider: 

bl) to b e c e rtain certainty of payment: the transaction is forwarded only after 
5 availability is controlled by the card issuing companies. Thus, the problems related to 
cards which have been. stolen, revoked and so on are solved; 

bl) obtaining certification and documentation of the operated transactions, to be 
used to settle disputes. 

10 BRIEF DESCRIPTION OF THE DRAWINGS 

The present invention will be illustrated herebelow by referring to a preferred 
embodiment thereof, explained by way of a non-limiting example. Reference will be 
made to the figures of the annexed drawings, wherein: 

figure 1, as set forth above, is a flow chart related to the operation of a 
1 5 POS of the known art; 

figure 2 shows a schematic view of the OSI standard; 
figure 3 shows a schematic view of the kind of data used on 
communication network; 

figure 4 shows a block diagram of a component of the apparatus 
2 0 according to the present invention; 

figure 5 shows a flow chart explaining the operation of the component in 

figure 4; 

figures 6 and 7 show additional flow charts for the understanding of what 
described with reference to figure 5; 

2 5 figures 8A and 8B show an example of an application tree containing 

statistical information obtained by means of the component in figure 4; 

figure 9 is a block diagram of the apparatus according to the present 

invention; and 

figures 10A and 1 OB are flow charts related to the operation of the apparatus 

3 0 according to the present invention. 



DETAILED DESCRIPTION OF THE INVENTION 

Data transmission from a source device to a destination device can occur in different 
manners. However, to ensure a data exchange having the lowest possible chance of 



* 11 

errors ^ it is necessary to adopt a series of rules or control procedures. Said Such rules or 
procedures are known as "communication protocols ". 

A w e ll known communication protocol is Figure 2 shows a schematic view of the "Open 
5 System Interconnection" (OSI) of the International Standards Organization (ISO) , a 
well known communication protocol . Said Such protocol is divided into seven layers j 
shown in figur e 2 . Layer 7 (application) on the source side contains information only 
related to the sole message (M) to be sent to the destination side. The successive layers 
on the source side add control information to the message: layer 6 (presentation) divides 

10 the data of the original message into blocks (Ml and M2); layer 5 (session) adds a title 
(S) to indicate the sender, the receiver and some information related to the sequence; 
layer 4 (transport) adds information (T) related to the logic connection between the 
sender and the receiver; layer 3 (network) adds information related to the path (N) and 
divides the message into packets representing the standard communication unit in a 

1 5 network; layer 2 (data link) adds a title portion (B) and a tail portion (E) to the message 
to ensure the correct order of the various packets and to correct transmission errors; the 
single message bits and control information bits added by the various layers are 
transmitted on the physical medium through layer 1. The downward pointing arrow Fl 
on the sender side indicates the manner according to which the outgoing message is 

20 constructed. Every addition to the message is verified and removed from the 
corresponding layer on the destination side. The upward pointing arrow F2 on the 
destination side indicates the mariner according to which the incoming message is 
reconstructed. 

2 5 The OSI model schematically described up to this point is just a conceptual model. A 
typical protocol normally adopted in the transactions related to the electronic trade is the 
protocol TCP/IP (Transmission Control Protocol and Internet Protocol). Said Such 
protocol, just like other communication protocols adopted, can be explained with 
reference to the layers structure of the OSI model. In fact, in In each of said such 

30 protocols, a certain source layer will divide the data it receives from an upper layer 
adding to said data a header e/e and/ or a tail to such data and will forward all this to a 
lower layer. On the destination side the opposite operations will occur. 
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Therefore, h e r e b e low reference will be made in the following to the conceptual OSI 
model for ease of reference; it is to be understood that what it will b e is described will be 
easily suitable for every application protocol with obvious modifications, typical of the 
relation existing between each application protocol and the OSI standard. 

5 

Monitoring systems for data transmitted between a sender node and a destination node 
are already known. However, said such systems can only analyze the OSI layers 2 (data 
link) and 3 (network). The monitoring and the successive interpretation of the data at 
said such layers allow only the allow monitoring of anomalies in the exchange protocol 
1 0 among the various components of a network data transmission system. 

Therefore, a typical disadvantage of said such prior art systems is their incapability of 
decoding the application piece of information transported on the network, i.e., the piece 
of information related to the layers 4 to 7 of the OSI standard. 

15 

With reference to the OSI standard, the communication unit in a network is the packet. 
Packets are in turn divided into frames. The beginning and the end of each frame are 
usually determined by delimitation characters. The frames are in turn divided into 
information frames and control frames. The information frames transport the data related 
20 to the message that is to be transmitted throughout the network, while the control frames 
deal with the regulating modes of said such transport, i.e., the flow control and the 
starting of the error recovery actions. Both the information frames and the control 
frames contain a header portion identifying the frame type and a body portion which is 
typical of the frame itself. 

25 

Figure 3 describes the structure of the T he information frame structur e will b e d e scrib e d 
with r e f e renc e to figure 3 . In th e upp e r portion of said figur e The upper portion of Figure 
3 schematically shows the generic structure of an OSI layer packet 2 is sch e matically 
d es crib e d , thus comprising both which comprises information frames 1 and control 
30 frames 2. A single information frame (OSI layer 3) is constituted by a header portion 3, 
containing the identification that the frame is an information frame, and by a body 
portion 4. The body portion (OSI layers 4 to 7) contains the real message 5, together 
with a plurality of fields 6, typical of the particular application syntax used, illustrated 
by way of example in the figure with the characters CI, C2 and C3. The application 



syntax is the information relative to the number of fields contained within the plurality 6, 
to the meaning of each of said such fields and to the data contained therein. 

R e f e rence will b e now mad e to figur e 4 , s howing Figure 4 shows a block diagram of the 
component for monitoring and interpretation of application protocols belonging to the 
apparatus according to the present invention. In said figur e first of all Figure 4 shows a 
source node 7 and a destination node 8, which are the terminals of the network portion in 
which the data are monitored and interpreted , ar e shown . Throughout the connection 
between said the two nodes, schematically illustrated by arrows F3, F4, F5, F6 and by 
the transmission medium 23, data relative to plural communications between a first set 
of source processors (not shown in figure) upstream of the source node 7 and a second 
set of destination processors (not shown in the figure) downstream of the destination 
node 8 travel bidirectionally. 

Said Such data are monitored by means of a data monitoring device 9. Several are the 
monitoring devices known on the market; for instance, as for the n e tworks bas e d on 
Eth e rnet technology, with reference to Ethernet networks, the Fast Etherlink XL™ card 
produced by the company 3Com can be mentioned. As for the networks bas e d on X.25 
t e chnology, for e xampl e With reference to X.25 networks, a possible device is the S508 
card produced by the Canadian company Sangoma™. Said Such card can operate with 
different OSI layer 1 (physical layer) standards such as, for example, the RS232 (or 
V.24) standard and the RS422 (or V.35) standard. The OSI layer 2 (data link) standards 
tog e ther with which said such card can operate are, for example, the HDLC standard and 
the X.25 standard. Anyway, the kinds of data monitoring device In any case, the various 
data monitoring devices 9 to be chosen for the purposes of the present invention can 
vary depending on which OSI layers 1 or 2 standards one needs to operate. In fact, it will 
be It is also possible to use monitoring devices working with implementation standards 
different from the OSI layer 2, such as for example "Frame Relay" or SDLC or also 
BSC and the like. Said Such devices are well known to the person skilled in the art and 
they will not be here described in detail. 

Th e monitoring Monitoring occurs "transparently" by means of two parallel connectors 
10 and 11, schematically illustrated in the figure 4, for monitoring of the data coming 
respectively from the source. node 7 and from the destination node 8. The monitoring 



- 14 - 

device 9, shown by the dashed block in th e of figure 4, includes a source data receiver 
12, a destination data receiver 13 and a connection interface 14. The source data receiver 
12 allows the reception of the data coming from the source node 7 only, as &4s- 
schematically indicated with the arrow F7; on the other hand, the destination data 
5 receiver 1 3 allows the reception of the data coming from the destination node 8 only, as 
schematically indicated with the arrow F8. The data so received in this mann e r are 
transmitted to the connection interface 14, as it-is indicated by arrows F9 and F10. 

Each data packet situated at a layer corresponding to the OSI layer 2 read by the 
10 monitoring unit 9 is forwarded to a control unit 15, as indicated by arrow Fll. The 
operation of the control unit 15 will be described in detail later. To e ach of said pack e ts 
a A reading time is associated to each of said packets by means of a dating unit 16, 
represented outside the control unit 15 for ease of description and th e r e with connected 
with the control unit 15 as indicated by arrow F12. Sueh The dating unit 16 can be any 
1 5 absolute timing device available on the market, in particular a radio or satellite device 
sat e llit e on e. In a preferred embodiment of the present invention a radio controlled 
digital clock adjusted on the CET (Central European Time) broadcast by a geostationary 
satellite was used. 

2 0 Furth e r In addition to the association of the reading time by means of the dating unit 16, 
the control unit 15 orders in a logical way the single frames so as to reconstruct the right 
logical and time sequence of the sending of the frames that, as it is known , dees which is 
known to not always coincide with the reception sequence: in fact, due to the forwarding 
techniques along telecommunication networks, it is possible for a forwarded "ABC" 

2 5 sequence of the "ABC" kind to be received in all of its possible permutations, i.e., 

"ABC", "ACB", "BAC", "BCA", "CAB", "CBA". Thea Further, the control unit 15 
discriminates the information frames from the control frames. For example, if 
transmission of the information occurs in the HDLC language, the last bit of the header 
portion of an information frame is 0 whereas the last bit of the header portion of a 

3 0 control frame is 1 . Therefore, inside the control unit 1 5 there are means, not described in 

the figure 4, discriminating said such last bit, e.g. a firmware contained in a ROM. In 
any case, no matter which data transmission code is used, it will always be possible to 
provide means for sai4 such discrimination discriminating a control fram e from an — 
information fram e. Therefore, said such discrimination allows to store the single 
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information frames deprived of the header portion and comprising the body portion only, 
thus containing the information which is typical of the particular application syntax 
used, together with the message to be transmitted. 

5 The data incorporating the monitoring time and divided into information frames and 

control frames are stored inside a discriminated data storing unit 17, bidirectionally 
connected to the control unit 15 as indicated by arrow F13. There is also a 
predetermined data storing unit 18, bidirectionally connected to the control unit 15. Said 
The predetermined data represent possible interpretations of the information or control 
10 frames contained in the discriminated data storing unit 17. Their use will be explained 
her e below with reference to the following figures. The connection between the 
predetermined data storing unit 18 and the control unit 15 is indicated by arrow F14. 

R e f e renc e will b e now mad e to figur e 5, showing Figure 5 shows a flow chart indicating 
1 5 the operations e x e cut e d performed by the control unit 15 on the information frames 

stored in the data storing unit 17. It is to be understood that th e The access to such 
information frame can be selectively regulated by means of authorizations and privileges 
management systems such as passwords, encryption and decryption codes, badge 
readers and the like given to qualified users. 

20 

A first step SI indicates the reading of the various packets by means of the monitoring 
unit 3. A second step S2 indicates the previously described discrimination, operated by 
the control unit 15 ^ between the information frames and the control frames, together 
with the association of the monitoring time. 

25 

On A statistic processing, shown in step S3, may also be provided on the non- 
application low layer control frames . The use of the non-application low layer control 
frames , whos e us e is unimportant for the purposes of the present invention , a statistic 
proc e ssing might also be provided, op e rat e d in th e step S3 . Said Such processing is not 
3 0 described in detail at the moment; th e mod e s by which it occurs will turn out to the 
mode of operation of such processing will be clear at the end of the present description. 
The final result of sueh the processing will provide a list of the various control frames, 
also reporting ake the number of occurrences for each of said frames. 
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As for With reference to the information frames, the flow proceeds to a step S4 wherein 
the single information frames are reconstructed according to their specific application 
syntax. Te For the purposes of said such reconstruction, the application syntax structures 
of the single information frames must be known. In fact, th e y Such structures are 
5 contained inside the predetermined data storing unit 18 described with reference to the 
previous figure 3. Said The unit 1 8 contains, for exampl e in a text file, for example, a 
formal abstract description for of possible interpretations of the information or control 
frames. Said Such data represent the modes according to which the body portion of a 
single information frame can be structured, for instance the machine transmission code 

10 (i.e., related to an information frame forwarded by the source or the destination), the 
number of the channel (i.e., related to a specific processor upstream of the source node 
or to a specific processor downstream of the destination node), protocol numbers, data 
processing numbers etc. said unit 18 can of course contain the syntax of several 
application protocols, of the information frames that are to be reconstructed in that 

15 moment. 

A reconstruction of the information frames one by one is obtained by a sequential 
comparison of the body portion of each information frame with each one of the abstract 
models in the unit 18. 

20 

Further to this, the different application sequences occurred between a determined 
source processor and a determined destination processor can be reconstructed, i.e., 
ordered according to time and kind of communication. Throughout the present 
description, for application sequence will b e int e nd e d the whole of the information 
2 5 frames exchanged between a determined source processor and a determined destination 
processor during a single communication will be intended . The application sequence 
ordered in step S5 will contain the single information frames ordered according to a time 
criterion only and not also according to a logical one. Ordering by time will be possible 
through the time association occurred in the previous step S2. 

30 

To give also In order to further p rovide a logical ordering of the data inside a specific 
application sequence, the presence of a group of application rules directing the data 
exchange between source and destination can be useful, although not necessary. Said 
Such application rules, typical of th6 a particular kind of conversation between a 



determined source processor and a certain destination processor, must be predetermined 
and as such they as w e ll are also collected in the predetermined data storing unit 18. Said 
The application rules are a series of possible interpretations of the information frames 
sequences contained in the discriminated data storing unit 17. 

Reference will be now made to an electronic purchase of a certificate (personal data, 
cadastral ...)*_ the cost of which is regulated by means of a POS payment. In this case it 
will be necessary to: 

1) Apply for th e c e rtificate to with the service provider ( FDS), i.e., te the body 
issuing the certificate , in order to obtain the certificate ; 

2) Acquire from FDS the cost of the certificate from FDS ; 

3) Operate the payment of said cost by means of the POS component; 

4) Communicate to FDS the executed payment to FDS ; 

5) Verify the actual transmission of the certificate from FDS to the applicant (as 
for th e certificate validity and authenticity techniques such as the "digital signature" 
might can be used); 

6) Credit the cost, by means of the POS component, to the bank account of FDS. 

If In case the apparatus object of the present invention serves several service providers, 
the POS component could not communicate directly with the bank of the service 
provider (FDS), but instead with a "service center" to which, with simple modifications 
of the POS management software, it shall will forward all the amounts and the codes of 
the FDS. 

The same "service center" will be in charge of the crediting to the single bank accounts 
of the various service providers. Thus, all the communications of the apparatuses which 
are on the territory will be addressable to the same service center. The service center will 
sum up all the amounts relative to the single providers and credit their bank accounts. 

In the present example FDS is assumed to be the only one (e.g., operating by an 
Intranet). In particular, FDS is assumed to be offering a certificate distribution service by 
means of a countrywide network of "unattended counters". It will be possible to apply 
for a certificate at any time, from every counter, even a certificate referring to a 
territorial zone different from the one where the counter is located, operate the related 



payment and obtain what was applied for. A counter is represented by any location, 
located in any one site (public or private) provided with the apparatus object of the 
present invention. 

Each one of the above described steps (certificate application, cost acquisition, payment 
operation...) is realized by means of the exchange between applicant and provider of 
application flows that are codified in frames. As previously described, the apparatus 
obj e ct of the present invention can reconstruct said the application sequences. 

H e r e b e low In the following, the single steps and roles undertaken by the various 
components are reported. 

1) Certificate request 

- Applicant: unattended counter 

- Provider: body issuing the certificate 

The reconstruction of the application flows (sequences) refers to data exchanged 
between the "applicant" counter from which the certificate application is operated and 
the "provider" managing the dialogue needed to acquire the information to monitor and 
issue the certificate. 

Furthermore, the apparatus obj e ct of the present invention stores the reconstructed data, 
©ata The data for the applicant identification are particularly important. 

2) Acquisition of the certificate cost: 

- Applicant: unattended counter 

- Provider: body issuing the certificate 

The reconstruction of the application flows (sequences) refers to data exchanged 
between the "applicant" counter from which the certificate application is operated and 
the "provider" which that, once the certificate is individuated, requests the payment 
thereof. 

The apparatus obj e ct of the present invention further stores all the reconstructed data. 
Data referring to the requested amount are particularly important. 

3) Payment operation 

- Applicant: unattended counter 

- Provider: center of the card issuing company 

The reconstruction of the application flows (sequences) refers to data exchanged 
between the "applicant", counter from which the application for the certificate to be paid 



- 19 - 

was operated, and the "provider" which has to authorize the payment. It is worth to point 
out that this time the provider is different from the previous cases and that the apparatus 
constitutes forms the interface for the coupling between the authority issuing the 
certificate and the one authorizing the payment. 
5 The apparatus obj e ct of the present invention further stores all the reconstructed data. 
Data referring to the amount authorized by the issuer are particularly important. 

4) Communication to the service provider of the executed payment 

- Applicant: unattended counter 

- Provider: body issuing the certificate 

10 The reconstruction of the application flows (sequences) refers to data exchanged 
between the "applicant", communicating data of the executed payment to the "provider" 
that, on these bases, is authorized to send the certificate. 

The apparatus obj e ct of the present invention further stores all the reconstructed data. 

5) Verification of the actual transmission of the certificate 
1 5 - Applicant: unattended counter 

- Provider: body issuing the certificate 

The reconstruction of the application flows (sequences) refers to data exchanged 
between the "provider", sending data related to the certificate and the "applicant" 
verifying the actual reception. 
2 0 The apparatus obj e ct of the present invention further stores all the reconstructed data. 
Data related to the certificate reception and content are particularly important. 

6) Crediting, by means of the POS component, to the bank account of FDS 

- Applicant: unattended counter 

- Provider: bank (or service center) of FDS 

2 5 The reconstruction of the application flows (sequences) refers to data exchanged 
between the "applicant", sending data related to the payments related to a determined 
time interval and the "provider" acquiring the data and acknowledging the reception 
thereof. 

30 The apparatus object of the present invention further stores all the reconstructed data. 
Data related to the transmitted amount are particularly important. 

Obviously, every step consists of the exchange of different application sequences, each 
one reconstructed on the basis of suitable rules. In fact, the step of application for a . 
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certificate will be divided into entering the certificate type, the holder's data, residence 
etc. Likewise, the other steps as well shall be divided into various substeps. 

An example of the application rules is reported in the following table 1, wherein 
5 reference is made to the step of applying for a certificate, substep holder's data entering. 
The source represents a user (client) applying for a certificate, the receiver (provider) 
represents the service provider (body qualified to issue the certificate). It is supposed 
that the conversation is codified by means of the application rules stored inside the 
predetermined data storing unit 18. 

10 

TABLE 1 

1: AS ? FDS 15 AS ? FDS 5 AS ? FDS 0 

Data of the certificate holder were regularly entered 



4: AS? FDS 13 AS? FDS 0 

Domicile entered by the applicant does not correspond 



Every line of said the table is an application rule, Le^ indicating & a possible data 
exchange application sequence between source and destination. The meaning of each 
1 5 application sequence is illustrated herebelow. For example, the first line indicates the 
following sequence of information frames: 

- the source (AS) interrogates (?) the destination; 

- the destination (FDS) answers with the activity number 15 codifying, e.g., the 
request of entering the for e nam e first name of the certificate holder; 

20 - the source (AS) interrogates again (?) the destination; 

- the destination (FDS) answers with the activity number 5 codifying, e.g., the 
request of entering the surname of the certificate holder; 

- the source (AS) interrogates (?) the destination; and 
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- the destination (FDS) answers with the activity number 0 codifying the 
sequence completion. 

The result obtained at the end of this conversation is that data of the certificate holder 
have been entered correctly. 

5 

The merely exemplifying table 1 could be represented also with a tree structure with 
more or less branches, according to the number of application sequences provided. 
Every path up to the leaves of the tree would then represent a particular application 
sequence, i.e., a particular conversation between source and receiver, i.e., again a 
1 0 particular sequence of information frames between source and receiver. 

The Any number of application rules can be provided anyon e. The larger the number of 
application rules provided, the bigger the chance to associate each of the application 
sequences temporally reconstructed in the step S5 with a well defined logical meaning, 
1 5 found by comparison with a particular application rule contained in the predetermined 
data storing unit 18 in figure 3. Therefore, in this manner ^_ it will be possible to verify 
the correctness or the anomaly of the particular application sequence that is b e ing 
compared in that moment. 

2 0 In the step S6 in of figure 5 ^ first of all the control unit 1 5 first verifies whether such 
application rules are available or not. Supposing that said the application rules are 
known, the flow can proceed either toward a step S8 or toward a step S9, depending on 
what was chosen in the step S7. The step S8 allows a simple classification of the 
application sequences. In fact, each application sequence is classified as belonging to a 

2 5 particular path among the various possible paths inside the application rules tree. The 

step S8 will be explained in greater detail with reference to the following figure 6. 

On the other hand, in the step S9 ^_ the logical path of all the application sequences 
monitored by the apparatus in a predetermined time interval is reconstructed. Said The 

3 0 step S9 will be described in greater detail with reference to the following figure 7. 

The apparatus according to the present invention allows a reconstruction of the logical 
path of the application sequences also if a series of application rules is not provided. In 
this event, the flow proceeds toward a step S10, that will also be described later. 



- 22 - 

R e f e renc e will b e now mad e to figur e 6, which Figure 6 provides a more detailed 
explanation of what was previously described with reference to the step S8 in figure 5. 
In a first step Sll ^the single application sequence, object of the comparison, is 
5 selected. In a successive step S12 ^_ the elements which are characterizing for 
comparison purposes are selected inside the selected application sequence. 

In the previously described purchase example of purchas e with reference to table 1 said 
the characterizing elements might be: the identification number of the source processor, 
1 0 the identification number of the user who r e quir e d requiring the purchase operation ef 
purcha se, the data provided by the source and the data provided by the destination. 

In the step S13 ^ the characterizing elements of the application sequence at issue are 
compared with one of the application rules of the above described table 1, s e arching for 

15 in search of a possible correspondence. If such a correspondence is found, the flow 
proceeds toward a step S14 in which said the correspondence is reported and will have 
to be taken into consideration in the r e sults of th e interpretation results . The** Further, 
the flow selects another sequence and e x e cut e s performs again the step Sll. If the 
correspondence at the step S13 is not found ^ the control unit 15 goes in step SI 5 to a 

2 0 subsequent rule, and if (step SI 6) there are still rules allowing a comparison, the control 
unit e x e cut e s performs once again the comparison of step SI 3. If no further rules are 
found, the control unit reports an anomaly in the step SI 7. Such an anomaly might 
alternatively mean: 

- either a kind of sequence which should have not been occurred (a real 
2 5 anomaly); or 

- a kind of sequence not inserted by mistake inside the application rules tree. 

In each of said events finding such an anomaly is certainly useful for the 
certification of the kinds of application sequences occurred in the network portion under 
examination. 
30 • 

Refer e nc e will b e now mad e to th e following figur e 6 which giv e s Figure 7 shows a 
more detailed explanation of what described in the step S9 in figure 5. 
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The steps S18 and S19 select r e sp e ctively the single application sequence and the 
characterizing elements of the same, respectively, similarly to what described with 
reference to the previous figure 6 &. The step S20 is to indicat e shows the comparison 
between the application sequence and the preset application rules contained inside the 
5 predetermined data storing unit 18. If a correspondence is found, the flow proceeds 
toward a step S21 wherein the correspondence found is taken into consideration through 
the update of the related statistic fields. Steps S18-S20 will be subsequently repeated, 
until the end of the sequences to be classified. If no correspondence is found, the 
application sequence to be classified is new; and it can be an anomaly or simply an 

10 unexpected sequence. In this event the flow proceeds toward a step S22 wherein the 
statistic fields related to that specific sequence are initialized. Furthermore, the new 
sequence will be inserted in the list of the preset sequences to be used for the 
comparison in the step S20. This is also indicated by the double pointing of the arrow 
F14 in the previous figure 4. Said Such particular sequences, i.e. the possible anomalies, 

1 5 can be evidenced in a particular manner to be recognized as such. Further to this, also in 
this case the steps S18-S20 are repeated until the end of the sequences to be classified. In 
particular, besides the number of crossings for each tree branch, it is also possible to 
monitor uncrossed branches. 

2 0 In case there is no preset sequence of application rules, it will always be possible for the 
control unit to reconstruct the communication applications occurred in the network 
portion under control (step S9 in figure 5). In this event, each analyzed application 
sequence will not be compared with the preset sequences, but and will be compared with 
the previously analyzed sequences. Therefore, the tree structure containing statistical 

2 5 information will be reconstructed by means of reciprocal comparison of each body 
portion of the information frames with the others. Also in this case, a tree will be 
constructed and it will be possible to know the number of crossings for each branch. 
Obviously, in this case it will not be possible to monitor the uncrossed branches as there 
will not be a prior knowledge of the existence of said the branches. 

30 

Ref e r e nc e will b e now made to figur e s 8A and 8B showing r e sp e ctiv e ly Figures 8A and 
8B show an example of an information frame structure and an example of a tree 
structure containing statistic information obtained by means of the apparatus according 
to the present invention. 
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In figure 8 A it is possible to notice four different fields: a first field 19 indicating the 
name of the source or destination processor; a second field 20 indicating the number of 
connections in the monitored time interval, a third field 21 indicating the average time 
5 length of each connection, counted for example in milliseconds, and a fourth field 22 
indicating the code of the activity executed. 

Figure 8B indicates the reconstructed tree. A first element El in the tree indicates that 
AS (source) connected 20 times, with an average connection time of 0 milliseconds 

1 0 (simple opening of the connection with the destination) and executed the activity with 
the code 0. A second element E2, El's only "son", indicates that in all those 20 
connections FDS (destination) answered with the activity having the code 20, with an 
average connection time of 20 milliseconds. There were two manners of proceeding. AS 
answered 18 times (element E3) with the activity 0 and twice (element E4) with the 

1 5 activity 1. The tree proceeds with other elements, whose meaning is now clarified by the 
context. The tree herewith disclosed is the result of the logical ordering operated in the 
step S9 or S 10 in figure 5. 

It is to be noted that the monitoring of the contents in the fields 19 and 22 of each 
20 element was operated in the step S4 in figure 5. The monitoring of the connections 
among the various elements, i.e., the fact that the element E2 is El's "son" and that the 
elements E3 and E4 are E2's "sons", was operated either in the step S9 or in the step S10 
in figure 5. 

2 5 The Therefore, the data flow relating to a particular application intercurr e d between one 

or more determined processors upstream of a source node and one or more determined 
processors downstream of a destination node can be th e r e for e reconstructed, in th e s e nse 
ef Le^ univocally determined in all of its component parts. Therefore, what is 
r e construct e d is the conversation relating to one or more client/provider applications is 

3 0 reconstructed . The logical reconstruction can take the form of the tree structure of figure 

8B. Thus, communications relating to different applications (which therefore originat e 
form different application trees) can be reconstructed, and on the same source processor 
also more client-applications (relating to different provider-applications) can be present. 
In the same way, on a destination processor more provider applications can be present. 



j> i c. 
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Figure 9 shows a schematic view of the apparatus according to the present invention. 
One or more processors 24 are connected in local network to the apparatus 25 according 
to the present invention, including a POS 26 and an apparatus 27 for monitoring and 
5 interpretation of application protocols according to what described with reference to the 
previous figures from 2 to 8B. In particular, the schematic representation of the 
apparatus 27 corresponds to the representation thereof shown in figure 4. The POS 26 
includes a modem 28 and it is connected to the apparatus 27 by means of a local 
connection 29. In particular ^ it is to b e provid e d that both the POS 26 and the apparatus 

10 for monitoring and interpretation 27 comprise respective local network interfaces 37, 38 
(as e.g. the Fast Etherlink XL™ card produced by the company 3Com™) coupled 
therebetween by means of a hub 39. The local network interface 38 of the apparatus 27 
is to be understood as connected to the control unit 15 of the apparatus itself. The POS 
26 further includes an electronic card reading device, not shown in figure. The modem 

15 28 is in turn connected to the center 30 of the card issuing company by means of a 
telephone connection 31. The apparatus 27 is connected to the local network, of which 
comprising the processors 24 tak e part , by means of parallel connectors 10, 1 1 identical 
to those already described with reference to the previous figure 4. The local network of 
processors 24 is then connected to a router 32 by a connection 33. The task of the router 

2 0 32 is that of routing the various local networks toward the Internet/Intranet/Extranet 
network, or anyhow toward any remote access to a service provider, schematically 
represented with 34, and from it to the trader 35. The router 32 will be connected on the 
on e hand one side to the local network 24 and on the other side other hand to the 
geographical network by means of a dedicated interface (telephone, ISDN, CDN 

2 5 dedicated line, optical fibers dedicated line or the like). If the processor 24 is alone (not 

connected to a local network) then the a router can be made is superfluous by providing 
and the user system can be provided with an internal modem of its own for connection to 
the geographical network. 

3 0 Figures 10A and 10B are flow charts which better explain the The operation of the 

system in figure 9 will b e b e tt e r e xplain e d with ref e r e nc e to th e flow charts in figur e s 
10A and 10B . 
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With reference to Figure 10A, in In a step D14 the user selects the product/ service of 
interest from an a web interface of th e WEB or other kind of interface , through the 
processor 24 connected to the Internet, Intranet, Extranet network or the like. 

5 The processor 24, through which the client makes his choice, can in turn be connected or 
not to a local network with other processors/devices, as previously represented with 
reference to figure 9. 

In a s ucc e ssiv e further step D15 ^_ the apparatus 25 already shown in figure 9 
1 0 automatically acquires and stores all information related to the requested transaction by 
means of the component for monitoring and interpretation of the application protocols 
27, among which such as the features of the item to be purchased, the trader, the amount 
of the requested payment etc. The operation of the mann e r according to which such an 
automatic acquisition occurs hav e has already been described with reference to the 
15 previous figures from 2 to 8B, conc e rning with reference in particular to the temporal 
and logical ordering of the monitored data, as w e ll as and the association of a logical 
meaning to said data using the application rules. Therefore, the answer of the trader to 
the request of the product/service operated by the client will be reconstructed and data of 
interest will be individuated among the reconstructed and stored application sequences. 

20 

In a subsequent step D16 the user/client inserts his payment card in the reading device in 
POS 26. 

In a subsequent decision step D 17 the card is recognized or not. 

25 

If the card is recognized the flow proceeds to the steps D18 and D19 wherein 
respectiv e ly the entering (manual or automatic through communication by apparatus 25) 
of the amount to be paid and of the secret code are requested , respectively . The entering 
of the amount to be paid (step D18) is also acquired and stored by the component 27 for 
3 0 monitoring and interpretation of the application protocols. 



In a s ucc e s s iv e subsequent decision step D20 the secret code is recognized or not. 



4> w e 
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In a successiv e subsequent step D2 1 the acquired information are is forwarded to the 
center of the card issuing company 30 already shown in figure 9. Said The information 
includes the client code, the amount to be paid, the identification number of the caller 
and any other data that needs to be processed by the side of the center 30. 

5 

It is important to note that the path of the information related to the step D21 occurs by 
us e of adopts a communication channel (indicated with 31 in figure 9) that can differ 
from the one (indicated with 36 in figure 9) used for the connection to the Internet, 
Intranet, Extranet or the like. For instance, such a path can occur through the ISDN 
1 0 channel "D", as it is a safe and advantageous solution, as a matt e r of fact already used in 
the known POS systems of th e known art . Other manners can for example provide a 
connection of the mobile phone, satellite, on RTG, on a dedicated channel type, or any 
other technique available now or in the future. 

15 In the succ e ssiv e subsequent steps the center 30 acquires the request, processes it and 
sends an answer to the caller. 

In particular, in step D22 it is verified whether the data available by the center 30 
authorize the transaction or not. If the transaction is authorized, in a step D23 the 

2 0 debiting of the cost on the center side occurs in a step D23 . 

Figure 10B shows a further Making r e fer e nc e h e r e b e low to figure 10B, in a succ e ssiv e 
step D24 , where the user acquires the th e acquisition by th e user of th e affirmative 
answer occurs . 

25 

In a subsequent step D25 . also shown in Figure 10B, the a comparison between the 
requested amount (stored in step D15) and the paid amount occurs. Said The comparison 
occurs by means of the component 27 for monitoring and interpretation of the 
application protocols (figure 9) and can concern the comparison between the requested 

3 0 data and those of the product that is about to be received. Thus, an automatic congruency 

control of between the paid amount and the purchased item is ensured. 
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In the event of a positive comparison, in a s uccessiv e subsequent step D26 the 
communication to the trader 35 (figure 9) of the executed payment and therefore the 
authorization to the trader to consign the goods occurs. 

5 In a subsequent step D27 the storing of the transaction data in the component 27 
occurs. Said The storing, like the acquisitions and storages hereto described with 
reference to the component 27, occurs in a sealed local memory on the user side, to be 
opened for possible controls or disputes. Said The memory, not shown in figure 9, is not 
described here in detail here, as the its implementation th e r e of is obvious for the person 
10 skilled in the field. 

In a subs e qu e nt st e p D28 th e forwarding of th e purchas e d product is provid e d. The 
purchased product is forwarded in a further step D28. If said the product is an electronic 
document or anyhow an information obtainable via network, said the product is 
1 5 forwarded directly to the processor 24 of the user. 

If ^_ instead ^_ the product is to be delivered later on (through the usual distribution 
channels), anyhow the provider will have the advantage of having already acquired the 
certain payment, and the purchaser will have the advantage of having a system capable 
20 of documenting the operated transaction, th e r e for e b e ing in all r e sp e cts i.e., a proof of 
the order, to be used in case of failed delivery. 

The subsequent steps D29, D30 and D31 can provide the printing of the payment 
receipt, the printing of the description of the purchased item and the printing of the 
2 5 possibly requested electronic document, respectively. 

From time to time the apparatus obj e ct of the present invention will forward the credit 
resulting from the sum of the various purchases operated at to the bank of the provider 
of products/services . 

30 

The crediting can occur either to a single trader (e.g. a Ministry, a bank or a local 
authority) or to more traders, the latter being usual in the electronic trade on the Internet. 
In case of crediting to various traders, two modes can be provided: 
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1) A "service center" for all the operated transactions, where the crediting due to 
each trader are is divided ( according to what h e r e to in accordance with what already 
described) 

2) Communicate the transaction data directly to the traders or to the their banks 
5 th e r e of , once the OK to the payment and to the sending of the goods is obtained. 

The present invention has been up to now described with reference to one of its 
embodiments, given as a non-limiting example. 

10 Furthermore, it is to be understood that there are other possible embodiments falling 
within the protective scope of the present industrial property right. 
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ABSTRACT 

An apparatus for control and certification of the delivery of goods and for the concurrent 
5 control and certification of the execution of the related payment includes a system for 
reading an electronic card and for managing authorization processes by the electronic 
card issuing company (26, 28, 30, 31) , an apparatus (27) for monitoring and 
interpretation of application protocols for network data transmission systems connected 
to the system for reading an electronic card, and a data storing unit of the various 
1 0 transactions obj e ct of electronic comm e rc e monitored and interpreted by means of the 
apparatus for monitoring and interpretation of the application protocols. 
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